Overhaul legacy security infrastructure to meet the shifting needs of a dynamic IT provider
Thycotic’s security teams were maxed out managing multiple security tools to monitor and provide robust, relevant detection and response. Their corporate environment consists of diverse endpoints and workstations of mostly Windows 10 and some Mac.
Thycotic turned to the Microsoft Defender security stack when faced with the need to conduct an organization-wide security overhaul replacing a legacy security infrastructure. The existing EDR, MDR, and antivirus tooling from multiple vendors was not integrated to work together seamlessly. The MDR solution itself generated 70-80% false positives, creating alert fatigue and a lot of unnecessary work for the security team.
Thycotic’s Chief Information Security and Privacy Officer Terence Jackson also realized that he needed the human element—eyes on glass—reviewing the raw data from Microsoft Defender for Endpoint to contextualize the information coming in and affecting the endpoints.